mozilla
/
pjs
зеркало из https://github.com/mozilla/pjs.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
107 477 коммитов 40 Ветки 136 Теги 1,1 GiB
Граф коммитов

3544 Коммитов

Автор SHA1 Сообщение Дата
ian.mcgreer%sun.com 41ebe0592b bug 150704, PK11_Finalize can crash because softoken does not implement C_XXXFinal correctly 2002-06-19 14:59:24 +00:00
bishakhabanerjee%netscape.com e5b3ecac7a correcting init_mcom function to enable "nssqa" to run at Netscape - 150752 2002-06-18 21:45:31 +00:00
relyea%netscape.com a9c4b2875a 1) Map flags both coming and going. 
2) Finish transaction of the target database not the source database.
 2002-06-18 16:41:41 +00:00
kaie%netscape.com 34144c21e7 b=145730 Avoid unnecessary repeated "encrypted page" alerts on JavaScript links. 
r=jst sr=darin
 2002-06-18 14:17:10 +00:00
wtc%netscape.com bf909b356a Bug 151940: SEC_PKCS12DecoderVerify should call SEC_ASN1DecoderFinish first 
to detect insufficient input data error.
 2002-06-18 05:00:39 +00:00
relyea%netscape.com 3b0169836f Standardize the open flags as 'enums' when using multiaccess databases, no matter 
if we are using PR_ versions of the flags or O_ versions of the flags.
 2002-06-17 18:46:27 +00:00
kaie%netscape.com ea34611103 b=148610 Lock icon should be updated as early as possible. 
r=javi sr=rpotts
 2002-06-17 09:56:14 +00:00
stephend%netscape.com b48fd8f9a9 Bug145409. JS strict warnings in certManager.js. Patch by Stephen Walker <walk84@yahoo.com> r=kaie@netscape.com, sr=jaggernaut@netscape.com 2002-06-16 21:19:25 +00:00
nicolson%netscape.com 0700feee32 add new tests. 2002-06-14 18:15:45 +00:00
nicolson%netscape.com 6d11aafe59 remove broken code until bug is fixed. 2002-06-14 18:15:21 +00:00
nicolson%netscape.com ba0e5da12c remove bogus comment. 2002-06-14 18:13:27 +00:00
relyea%netscape.com 8ecce17ba5 check version of the existing DB, not the updatedb. 2002-06-14 17:29:56 +00:00
kaie%netscape.com 4c4d965cce b=119394 Support fetching certificates from LDAP servers. 
r=javi/dmose sr=mscott
 2002-06-14 02:10:02 +00:00
kaie%netscape.com 0651ac578a b=150863 Fix lock icon state for low/high crypto mix. 
r=javi sr=alecf
 2002-06-13 23:59:01 +00:00
relyea%netscape.com 65efceafe9 Add transactions to the database update portion of the code. 2002-06-13 23:25:37 +00:00
relyea%netscape.com b73e72fecf Update cert handle on token insertion/removal. 2002-06-13 21:43:30 +00:00
relyea%netscape.com 5af6761fdf Add series to keep track of object handle value validity. 2002-06-13 21:42:41 +00:00
relyea%netscape.com c4f501ea84 Reset the cert cache and clobber cert handles on token insertion an removal 2002-06-13 21:40:43 +00:00
jpierre%netscape.com 35d427682d Add missing AOL root CA certs 2002-06-13 10:14:50 +00:00
nicolson%netscape.com ee3a5ab4b0 add javadoc target. 2002-06-12 22:54:16 +00:00
nicolson%netscape.com 73767e2c4b remove these files--there's no C code in this directory. 2002-06-12 20:18:10 +00:00
nicolson%netscape.com 162f234bdc Grab NSS headers from directory "nss" instead of directory "security". 2002-06-12 20:11:22 +00:00
nicolson%netscape.com 6432d07503 remove makefiles for this directory, since it's only Java files. 2002-06-12 20:08:39 +00:00
kaie%netscape.com 0afcb51180 b=126944 Handle NSS error codes within PSM. 
r=ssaux sr=darin
 2002-06-12 16:44:22 +00:00
wtc%netscape.com c82952da17 Bug 150143: use map file to limit exported symbols on Mac OS X. The patch 
is contributed by Brian Ryner <bryner@netscape.com>.
Modified files: Darwin.mk rules.mk
 2002-06-12 00:21:19 +00:00
relyea%netscape.com c5df5f929f When checking NeedInit status, go back and check the token in case the token 
has been initialized offline.
 2002-06-11 23:33:25 +00:00
jpierre%netscape.com ab061f96db Update for root certs - bug 139874 2002-06-11 23:16:25 +00:00
kirk.erickson%sun.com 81f890d48e Fixed indentation caught by Wan-Teh (66606). 2002-06-11 22:41:45 +00:00
kirk.erickson%sun.com 936600b550 Resolves 66606. Added -O (enable OCSP checking). 2002-06-11 16:29:28 +00:00
ddrinan%netscape.com ef961ea641 Bug 150708. Incorrect keysize when finding bulk alg. r=wtc. 2002-06-10 22:00:32 +00:00
relyea%netscape.com fb5d7b49ac Return public and private keys in the order specified by the PKCS #11 spec. 2002-06-10 20:33:31 +00:00
leaf%mozilla.org 0034658953 updating locale version string for impending release, bug 149802 2002-06-07 07:45:38 +00:00
alecf%netscape.com f0263ddf07 fix for bug 101761 - REQUIRES update - remove all REQUIRES that are no longer necessary.. r=cls, a=asa (build-only changes) 2002-06-06 20:28:14 +00:00
jpierre%netscape.com 35ae180053 Fix for 141256 - rewrite OCSP HTTP download code to fix error handling 2002-06-06 01:05:40 +00:00
jpierre%netscape.com b497f3d9d4 Fix for 139874 - Inject Latest CA Root Certs 2002-06-06 00:12:56 +00:00
cathleen%netscape.com 12e47be3cf clean up last traces of nsCRT::strlen(char* s), bug 124536 r=dp, sr=brendan 2002-06-04 23:05:39 +00:00
thayes%netscape.com 9ff40a4655 Reserve OID (netscape_name_components 2) - see 605437 2002-06-04 21:46:05 +00:00
bishakhabanerjee%netscape.com 276ba298ce to build the new NSS tests.. bugzilla bug 144316 2002-06-03 17:16:57 +00:00
wtc%netscape.com c4394897ee Backed out the previous checkin, which is not being used and triggers 
a bug in gmake 3.76.1 with MKS shell on Windows.
 2002-06-01 04:31:44 +00:00
wtc%netscape.com 02cd9a7152 Use $(DLL_SUFFIX) instead of ${DLL_SUFFIX}. 2002-06-01 04:25:38 +00:00
nicolson%netscape.com 5fa7f3e19b Fix 147794: PK11_ImportDERPrivateKeyInfoAndReturnKey frees the private key incorrectly. 2002-06-01 00:43:46 +00:00
rangansen%netscape.com a69b8eca98 Fix to ensure change password on db is commited - using rv == SECSuccess would actually abort it. 
r = wtc
 2002-06-01 00:37:00 +00:00
kaie%netscape.com ccd53c19ba b=138479 Disable Security tab in View Frame Info 
r=javi sr=jag
 2002-05-30 04:56:16 +00:00
wtc%netscape.com 9d721941f6 This is a test. I changed Revision and Date to bogus values and want to 
see what actually got checked in.
 2002-05-30 02:08:07 +00:00
glen.beasley%sun.com 7482bb0552 for release eng to build multiple platforms 2002-05-30 00:47:18 +00:00
wtc%netscape.com 72310f0cb6 Import NSPR 4.2 and DBM 1.61. 2002-05-30 00:36:48 +00:00
nicolson%netscape.com 53a1a1529c Fix bug 112330: CryptoToken.changePassword(new ConsolePasswordCallback(), new ConsolePasswordCallback()) throws Native Exception. 
We were zeroing the password after freeing it, which in some cases caused
memory corruption and crashing.
 2002-05-29 21:54:14 +00:00
ian.mcgreer%sun.com 8da972fafe bug 136701, certutil should use PK11_ListCerts 2002-05-29 18:19:33 +00:00
kaie%netscape.com a67cfbacc5 b=130650 In page info, "Security" tab lacks shortcut. 
r=kaie sr=jag
 2002-05-29 03:40:46 +00:00
kaie%netscape.com 412b06829d b=110195 Master passwords steals focus in prefs 
r=kaie sr=alecf
 2002-05-29 03:32:04 +00:00
kirk.erickson%sun.com 39f40869dd Fixed OCSP typo. 2002-05-28 18:26:37 +00:00
wtc%netscape.com f53b2a3fe4 Bug 142575: use the PRIVATE keyword for the /EXPORT linker option. 2002-05-25 16:00:55 +00:00
wtc%netscape.com a46d397d1b Bug 142575: use the /EXPORT linker option on the command line. 
Modified files: nssinit.c config.mk
 2002-05-25 06:52:19 +00:00
wtc%netscape.com 80bf8da267 Bug 142575: a better fix. 2002-05-25 01:02:39 +00:00
wtc%netscape.com d7e1b26fba Bug 142575: added function forwarder for 'mktemp' for "bug compatibility". 2002-05-24 21:00:55 +00:00
javi%netscape.com 11e1c7df19 Make pkcs12.h C++ friendly. 2002-05-24 20:11:29 +00:00
wtc%netscape.com 823ecf3636 Back out the previous checkin. It broken the cmd/certcgi build. 2002-05-24 14:58:02 +00:00
javi%netscape.com d7cffca266 Add macros to make header file C++ friendly. 2002-05-24 00:53:48 +00:00
wtc%netscape.com 5e325c5e17 Bug 142575: on Windows added mktemp (which simply calls _mktemp in the C 
run-time library) to be backward compatible with the bug that mktemp was
accidentally exported from the nss3.dll in NSS 3.2.x and 3.3.x.
 2002-05-23 22:28:50 +00:00
kirk.erickson%sun.com 48cc6e3f23 Resolves bug 90070 (now exiting with PK12UERR_PK11GETSLOT 13). 2002-05-23 22:21:42 +00:00
nicolson%netscape.com 28a16a764c Fix 146515: PK11PrivKey.fromPrivateKeyInfo enables no operations for RSA keys 2002-05-23 20:32:10 +00:00
nicolson%netscape.com 96232e756b move new entry to end of file 2002-05-23 18:45:23 +00:00
nicolson%netscape.com d503b902ae cleanup tabs and spaces. 2002-05-23 18:45:00 +00:00
nicolson%netscape.com d1bbd143bc Various minor tweaks for code cleanliness. 2002-05-23 18:29:07 +00:00
glen.beasley%sun.com e56800b6f2 bug 144913 isCertValid addition 2002-05-23 17:52:23 +00:00
relyea%netscape.com 72625ff391 Refresh token cache after login on tokens that need to log in before they 
could read their certs.
 2002-05-22 23:13:05 +00:00
relyea%netscape.com 12e3d87c3a Close our peer database handles because some platforms (Mac) do bad things 
if you hold two berkelydb handles open to the same database in the same process.
(actually a lot of platforms could cause problems, the Mac version of dbm (1.85)
just does the bad things right away).
 2002-05-22 21:47:23 +00:00
nicolson%netscape.com 121ad6444e Fix http://bugzilla.mozilla.org/show_bug.cgi?id=144934: generating DSA public key from spec is broken. 2002-05-22 02:13:31 +00:00
relyea%netscape.com bdb4739c86 Back out the change on Module destruction. 2002-05-22 00:25:48 +00:00
relyea%netscape.com 78d49962a7 Don't crash if url is specified, but the crl is broken 2002-05-21 21:26:52 +00:00
relyea%netscape.com 77c8edd9e2 Missing component when deleting should not be fatal 2002-05-21 21:26:14 +00:00
relyea%netscape.com 7992b938dc Fix spelling error. 
Clear out certs from the cache before the token goes away.
 2002-05-21 21:24:35 +00:00
relyea%netscape.com ae037a0020 Fix spelling error. 2002-05-21 21:23:33 +00:00
relyea%netscape.com 16d6f24791 Clear out certs associated with tokens that have just been taken off the trust domain. 2002-05-21 21:22:55 +00:00
jpierre%netscape.com f6482b1e32 Fix for bug 137645 - cached certificate does not get its nickname updated after P12 import of matching user certificate 2002-05-20 23:21:39 +00:00
ian.mcgreer%sun.com 15cbb51ea4 bug 144309, return value of STAN_GetCERTCertificate not checked 
r=wtc
 2002-05-20 18:05:11 +00:00
ian.mcgreer%sun.com bd35791189 fix bustage caused by generated file discrepancies 2002-05-20 16:01:21 +00:00
ian.mcgreer%sun.com 0a481f5a1d need to match ckapi.perl with generated target nssck.api, which was modified 2002-05-20 14:38:48 +00:00
wtc%netscape.com f50b1aceb0 Bugzilla bug 145178: added OpenBSD build support. The patch is contributed 
by Christopher Seawood <seawood@netscape.com>.
Modified Files: coreconf/config.mk sslmutex.c sslmutex.h
Added Files: coreconf/OpenBSD.mk
 2002-05-18 03:24:17 +00:00
wtc%netscape.com c01c8333dc Bugzilla bug 131171: added HP-UX IPF (ia64) support. Portions of the patch 
(attachment 84127) were contributed by Jim Dunn <jdunn@netscape.com>.
 2002-05-18 00:52:11 +00:00
wtc%netscape.com 4629198fde Bugzilla bug 145128: fixed a typo error in sec_pkcs5_rc4(). Also simplfied 
two other similar constructs.  r=relyea.
 2002-05-17 21:29:27 +00:00
kaie%netscape.com 80c24f7a91 b=143532 Only allow toggling FIPS when it is safe to 
r=javi sr=alecf
 2002-05-17 19:56:11 +00:00
ian.mcgreer%sun.com 92d2581332 bug 144448, incorrect use of ## operator in creating CKFW entry points 2002-05-17 18:57:34 +00:00
kaie%netscape.com 8892f15a70 b=144823 Localized certificate name is garbled, unable to send out signed/encrypted mail on a localized build 
r=javi sr=mscott
 2002-05-17 01:21:31 +00:00
relyea%netscape.com dfd4f9ba1c Fix Linux and Solaris builds 2002-05-17 00:39:26 +00:00
relyea%netscape.com 5781a451fd The tip is now NSS 3.6, make sure new builds properly indicate this 2002-05-16 22:12:37 +00:00
relyea%netscape.com 2c1512022e Add PK11_GetPBEIV to exported symbol list. 2002-05-16 22:12:10 +00:00
relyea%netscape.com 318e0b19d3 Add function to get the PBEIV. 2002-05-16 22:06:19 +00:00
relyea%netscape.com 96fcbeedc8 Add support to turn on or off optimizations based on parameters to NSS_Init functions 2002-05-16 22:05:17 +00:00
relyea%netscape.com db4d3c197d Make a single softoken which works for both servers and clients depending on configuration. 
Add the _PAD functions to the internal database token.
 2002-05-16 22:04:12 +00:00
rpotts%netscape.com 4d4116d281 bug #46856 (r=valeski, sr=darin). API Changes to nsIWebProgress/nsIWebProgressListener) 2002-05-16 20:57:37 +00:00
relyea%netscape.com d41f575216 Argh. I thought I had compiled this! fixe compile errors. 2002-05-16 20:48:27 +00:00
relyea%netscape.com 7252fee64d Add Transactions (still need to add transactions on database upgrade). 
Make trust objects their own objects to reduce a couple of unnecessary cert decodes.
 2002-05-16 20:39:04 +00:00
wtc%netscape.com 4d369b4b08 Bug 131171: added HP-UX 11.20 support. 2002-05-16 17:35:41 +00:00
wtc%netscape.com a2dc0c286f Bugzilla bug 138532: use pipes instead of semaphores for NetBSD, which does 
not have semaphore.h.  Thanks to Chris Seawood <seawood@netscape.com> for
the patch.  Modified files: sslmutex.h sslmutex.c
 2002-05-16 13:36:02 +00:00
wtc%netscape.com 48efa10fb5 Bugzilla bug 133753: added support for AIX 5.1 to security/coreconf. 2002-05-16 13:12:33 +00:00
wtc%netscape.com f0ab843625 Fixed build breakage on BeOS -- made the ifdef match the one in sslsnce.c. 2002-05-16 05:32:30 +00:00
kaie%netscape.com d829db174a b=129067 Deleted certs still appear in Cert Manager. 
r=javi sr=alecf
 2002-05-16 04:03:19 +00:00
kaie%netscape.com b29048e4fe b=129067 Backing out unreliable patch. 
See bugzilla for details.
Better patch will be checked in a minute.
 2002-05-16 03:59:36 +00:00
kaie%netscape.com 6803ea2ace b=136948 Give better feedback when no valid certs for S/Mime are available 
r=javi sr=mscott
 2002-05-16 03:51:37 +00:00
kaie%netscape.com 9a400e7c1c b=144056 security state not reset after loading about:blank pages 
r=javi sr=rpotts
 2002-05-16 03:39:59 +00:00
jpierre%netscape.com 3415905c45 Fix for 141256 - correct HTTP parsing for OCSP in NSS 2002-05-15 23:59:40 +00:00
dougt%netscape.com e96df2ad1b Fixes mozilla/strings requiring unfrozen nsCRT class. patch by scc, r=dougt, sr=jag, b=136756 2002-05-15 18:55:21 +00:00
relyea%netscape.com d987bdfd4b bug 133397. Move AddPermModule() inside the previously empty if statement where it belongs. 2002-05-14 23:16:16 +00:00
kaie%netscape.com 58c2e7a36c b=137874 Unable to import CA cert before SSL keep alive connection is terminated 
r=javi sr=alecf
 2002-05-14 20:46:03 +00:00
kaie%netscape.com 1942971d28 Backing out code from bug 102633 and the unsuccessful fix attempt from bug 137530, because the UI does not work as expected. 
r=javi / sr=alecf for backing out
 2002-05-14 20:42:54 +00:00
nicolson%netscape.com f039df6a9e Support DSAPrivateKey. 2002-05-14 02:21:25 +00:00
wtc%netscape.com ab66e37271 Bugzilla bug 135069: SEC_PKCS12DestroyExportContext should free the slot 
reference allocated in SEC_PKCS12CreateExportContext. r=relyea,mcgreer.
 2002-05-13 17:22:46 +00:00
wtc%netscape.com 012d3d240d Bugzilla bug 135824: fixed slot reference leaks in signtool and removed 
a faulty attempt to set user trust.  r=relyea,mcgreer.
Modified files: certgen.c util.c
 2002-05-13 17:08:20 +00:00
wtc%netscape.com f6bfa70691 Bugzilla bug 135052: more cleanup in SEC_PKCS12DecoderStart. r=relyea. 2002-05-10 23:10:06 +00:00
jpierre%netscape.com 9403262b78 Fix for bug 142868 - CA certificates are imported with NULL nicknames . 2002-05-10 20:21:38 +00:00
relyea%netscape.com a02dfd314a Add function to determine if it's safe to delete the internal module. 2002-05-10 18:36:18 +00:00
relyea%netscape.com 8a86a90862 Detect when we have a previously deleted internal module which has not yet been freed, and don't try to switch to it. 2002-05-10 18:13:44 +00:00
relyea%netscape.com b4c8847fee Add new error code for trying to all previously deleted modules which have not yet been freed. 2002-05-10 18:12:39 +00:00
relyea%netscape.com 53561d397f Allow both FIPS and non-FIPS tokens to be initialized and active at the same time. 2002-05-10 18:11:37 +00:00
relyea%netscape.com fb8c9f6813 When we force, we should preserve the NULL nickname semantics. 2002-05-10 18:10:26 +00:00
nicolson%netscape.com 7999d93103 comment out JDK 1.4 test so we can build with earlier versions 2002-05-10 00:13:19 +00:00
nicolson%netscape.com 331e8205e9 Don't run javac if there are no source files to compille 2002-05-10 00:12:44 +00:00
wtc%netscape.com c535d97c40 Bugzilla bug 135821: fixed the internal slot reference leak in 
PK11_WrapPrivKey.  r=relyea.
 2002-05-09 23:34:24 +00:00
wtc%netscape.com aa3a2a0110 Bugzilla bug 135809: fixed the slot reference leaks in PBE_CreateContext 
and SEC_PKCS5GetIV.  r=relyea.
 2002-05-09 23:21:16 +00:00
wtc%netscape.com 92ca89f0c7 Bugzilla bug 135818: fixed internal slot reference leaks in 
PK11_VerifySlotMechanisms and PK11_InitToken.  r=relyea.
 2002-05-09 23:18:15 +00:00
wtc%netscape.com 93b9d9fe97 Bugzilla bug 135826: fixed the slot reference leaks. 2002-05-09 23:01:21 +00:00
ian.mcgreer%sun.com 9f99132e86 bug 135808, STAN_GetDefaultCryptoToken appears to leak a slot reference, but there are no callers of it. Removing function. 
r=wtc
 2002-05-09 22:42:23 +00:00
wtc%netscape.com 09578490e1 Bugzilla bug 135334: free the internal key slot reference when we are done. 2002-05-09 21:14:36 +00:00
wtc%netscape.com effd5d308f Bugzilla bug 135058: free nickCopy on error returns in 
PK11_FindCertsFromNickname.  r=mcgreer.
 2002-05-09 20:01:18 +00:00
nicolson%netscape.com 12f3461e9e add SocketBase.getLocalAddressNative. 2002-05-09 17:11:18 +00:00
nicolson%netscape.com ab7641b564 Fix 143256: SSLServerSocket.getInetAddress returns the wrong address. 
Implement toString() for both socket types.
 2002-05-09 17:10:06 +00:00
nicolson%netscape.com 2dfdffa408 add more PBE keygen algorithms. 2002-05-09 14:32:54 +00:00
nicolson%netscape.com 437d6f5877 update to work better with PBE. 2002-05-09 14:32:33 +00:00
nicolson%netscape.com a9385c1fcf get rid of PBEKeySpec, just use PBEKeyGenParams. 2002-05-09 14:29:07 +00:00
glen.beasley%sun.com dc0c0fe061 115778 return local port 2002-05-09 02:26:25 +00:00
kaie%netscape.com 638d00f1cf b=137530 Fix checkboxes in Edit Cipher dialog. 
r=javi sr=hewitt idea-for-fix=varga
 2002-05-08 19:06:11 +00:00
darin%netscape.com 1a993a2f38 fixing mac bustage (next time i'll remember to build PSM on my mac) 2002-05-08 00:07:23 +00:00
wtc%netscape.com 8ff49240a7 Bugzilla bug 136279: Return oldpath only if it is different from path. 
Avoid an unnecessary call to SECMOD_HasRootCerts in nss_FindExternalRoot.
 2002-05-07 23:35:22 +00:00
darin%netscape.com f43dfb75ba fixes bug 142870 "nsIFile should use UCS-2 instead of UTF-8" 
r=dougt sr=alecf
 2002-05-07 23:07:19 +00:00
nicolson%netscape.com e748daaffb change assert to _assert. 2002-05-07 20:45:09 +00:00
nicolson%netscape.com 2d7b8c3eb6 add some checks to prevent misunderstandings 2002-05-07 20:44:48 +00:00
relyea%netscape.com b815a638c1 Automatically create a NULL email profile for certs with email addresses which 
are imported into the internal token.
 2002-05-07 20:38:59 +00:00
nicolson%netscape.com c27c856e10 update version numbers. 2002-05-07 20:34:54 +00:00
nicolson%netscape.com 64a0c099f1 make it public so that it can be instantiated from CryptoManager. 2002-05-07 20:34:05 +00:00
nicolson%netscape.com 37a7505a46 implement some methods in support of java.security.Key. 2002-05-07 20:33:23 +00:00
nicolson%netscape.com 05f9c20222 fix broken error message. 2002-05-07 20:32:29 +00:00
ian.mcgreer%sun.com 687519e7b2 bug 141936, crash when NULL nickname entry is stored in temp store 
r=jpierre
 2002-05-07 20:31:59 +00:00
nicolson%netscape.com be3896ad3a Now SymmetricKey knows what KeyGenAlgorithm its associated with. 2002-05-07 20:31:52 +00:00
nicolson%netscape.com dac41b14e0 force load of SHA1 provider before installing it as a provider. 2002-05-07 20:31:14 +00:00
nicolson%netscape.com 91a46ed3ce add JCE providers. 2002-05-07 20:30:38 +00:00
nicolson%netscape.com d7d08bbf7d update version strings. 2002-05-07 20:24:03 +00:00
ian.mcgreer%sun.com 3bd2314a52 bug 142175, PK11_ListCerts regressions -- handle PKCS#11 incompatibilites with serial numbers, and fix trust collection. 2002-05-07 14:58:12 +00:00
kaie%netscape.com 33cd0c8f64 b=141871 Releasing callback in nsNSSSocketInfo must be proxied. 
r=javi sr=alecf
 2002-05-07 09:35:00 +00:00
kaie%netscape.com 308edeca0f b=112384 Unable to download some CRLs. 
r=javi sr=darin
 2002-05-07 09:29:23 +00:00
kaie%netscape.com ac67264a36 b=139329 Crashes trying to send signed mail. 
r=javi sr=alecf
 2002-05-07 09:25:19 +00:00
jpierre%netscape.com a4d73c1434 Fix for 142658 - fix certutil crash with NULL nickname 2002-05-06 23:10:40 +00:00
nicolson%netscape.com 1f951f8584 Renamed to JSS*. 2002-05-06 21:54:38 +00:00
nicolson%netscape.com 8e32f7cd47 Sun's PBE Key Spec is incomplete. 2002-05-06 18:58:39 +00:00
nicolson%netscape.com d6c440b810 add DESede. 2002-05-06 18:49:52 +00:00
wtc%netscape.com 2ff0c62fa7 Bugzilla bug 136279: fixed bugs where 'path' and 'oldpath' were passed 
to string functions before they were null-terminated.  Added a comment
to explain what 'oldpath' is for.
 2002-05-03 20:59:50 +00:00
nicolson%netscape.com b8b8caf60f move alg-specific provider classes into generic parent classes. 2002-05-03 00:27:03 +00:00
nicolson%netscape.com 6e304edf30 upgrade to NSS 3.4.1 RTM and NSPR 4.2. 2002-05-02 23:02:49 +00:00
nicolson%netscape.com c99cea2025 New provider files for JSS 3.2. 2002-05-02 20:25:15 +00:00
ian.mcgreer%sun.com 74f7a8a572 bug 141355, CERT_DecodeDERCertificate is not a safe function for some uses, must be replaced with CERT_NewTempCertificate. 2002-05-02 19:00:13 +00:00
relyea%netscape.com d74b0c5ba7 Fix the RSA key check to correctly accept keys with p < q. 2002-05-02 17:39:13 +00:00
glen.beasley%sun.com 9981c35466 bug 131308 build 64 bit JSS with JDK 1.4 2002-05-02 04:37:16 +00:00
glen.beasley%sun.com d161d0be5e bug 129394 change assert to _assert 2002-05-02 04:04:23 +00:00
kaie%netscape.com 64bea80e40 b=139948 SSL Tooltip not updated when going from one ssl site to another 
r=javi sr=jag
 2002-05-01 14:15:27 +00:00
jpierre%netscape.com 38daf04b71 Fix for 136279 - initialize NSS in a way compatible with < 3.4 versions of NSS 2002-05-01 01:04:41 +00:00
wtc%netscape.com 9a0c0ef79c Bugzilla bug 127062: use PR_MSG_PEEK instead of MSG_PEEK. 2002-05-01 00:21:50 +00:00
wtc%netscape.com ac26f4995d Bugzilla bug 131057: define PORT_Strdup as a function that calls PORT_Alloc. 
Modified files:
	lib/ckfw/nsprstub.c lib/fortcrypt/swfort/pkcs11/stub.c
	lib/nss/nss.def lib/util/secport.c lib/util/secport.h
 2002-05-01 00:06:39 +00:00
wtc%netscape.com 31efe5f323 Whitespace change. 2002-04-30 00:11:19 +00:00
relyea%netscape.com 458d4a99e2 Use NewTempCert and AddTempCert when importing because the cert may already exist 
in the cache.
 2002-04-29 23:54:07 +00:00
darin%netscape.com 1b1677bbe9 fixes bug 129279 "nsIFile unicode/utf8/ascii task" 
r=dougt sr=alecf
 2002-04-27 05:33:09 +00:00
wtc%netscape.com 18917e3c78 Added pkibase.c to the project. 2002-04-26 23:29:19 +00:00
wtc%netscape.com ce697caabc Needed a (char *) cast for slotInfo.manufacturerID because it is an array 
of "unsigned" chars.  Mac's compiler complains about that.
 2002-04-26 23:05:40 +00:00
jgmyers%netscape.com aa210f4255 Remove ssl-forcehandshake workaround r=kaie/rpotts/bienvenu sr=darin 2002-04-26 23:02:11 +00:00
wtc%netscape.com e1cdae04b3 Removed devobject.c from the project. That file was removed. 2002-04-26 22:52:07 +00:00
wtc%netscape.com 15576425ef Need to define SHLIB_SUFFIX for lib/softoken/dbinit.c. 2002-04-26 22:42:15 +00:00
relyea%netscape.com 2d8c1b98ba return error when incomplete shutdown has been detected. 2002-04-26 22:36:07 +00:00
ian.mcgreer%sun.com 7e66c201ad When doing cert traversals, create the certs in full as they are found. This avoids thrashing the softoken's object cache when the database has a large number of certs. 2002-04-26 14:34:05 +00:00
ian.mcgreer%sun.com 86371e2f7b fix broken HPUX builds 2002-04-26 12:59:06 +00:00
relyea%netscape.com 7577a5a2f4 Add code to update nickname and 'CKA_ID' from set attribute calls. This allows 
us to add a nickname to a cert after we import it from pkcs #12.
 2002-04-26 01:44:33 +00:00
relyea%netscape.com 18b58745a8 Write the nickname entry as well when adding a nickname to a bug. 2002-04-26 01:09:21 +00:00
relyea%netscape.com 063c8f3636 Detect Active Card presents and disable PROTECTED_PIN_PATH login when found. 2002-04-25 21:24:47 +00:00
wtc%netscape.com 470f233add Deleted code that was made obsolete by the previous revision. 2002-04-25 21:10:09 +00:00
relyea%netscape.com 0d8f8e8981 Don't let activeCards set the Protect_Auth bit because they weren't intending to 
to begin with.
 2002-04-25 20:57:06 +00:00
ian.mcgreer%sun.com f228b875f1 if a cert already exists, use C_SetAttributeValue to change its mutable attributes during import (instead of trying to recreate it) 2002-04-25 20:49:49 +00:00
ian.mcgreer%sun.com 980175a1c0 bug 138626, remove deleted cert from cache even if references still exist 2002-04-25 19:37:30 +00:00
ian.mcgreer%sun.com 05809d9acf reorganize token cache so that cache entries for imported objects are created from the token, not from the user-supplied template 2002-04-25 19:33:47 +00:00
relyea%netscape.com 36917f3b4c NSS 3.4 has branch, that makes the tip at least NSS 3.5 2002-04-25 18:51:45 +00:00
relyea%netscape.com 664c5ae965 Don't set the Token value before fetching CRL attributes. This code is fetching 
attributes from a known CRL, not looking up new attributes (I'm pretty sure that
CVS apropos would show I checked in the previously wrong code).

bob
 2002-04-25 18:33:45 +00:00
seawood%netscape.com ce9e9903a5 Add 'make install' target to build. It's "MRE-friendly". (See http://www.mozilla.org/projects/embedding/MRE.html for details.) 
Changes:
* Added EXTRA_COMPONENTS variable to build.  Use it to automagically install files into the components dir.
* Added SYSINSTALL variable.  Use it install files onto the system.
* Move mozilla-config generation from configure to makefiles
* mozilla-config will now generate paths based upon the MRE-based directory layout.
* Generate mozilla script from template

The installation heirarchy currently looks like:
$prefix -> /bin/mozilla
           /bin/mozilla-config
           /include/mozilla-ver/*
           /lib/mozilla-ver  (mozappdir)
                            /components
                            /res
                            /defaults
                            /chrome

There is preliminary build support for MRE dirs as well though the component manager hasn't had MRE support added yet.

$prefix -> /lib/mre/mre-ver  (mredir)
                            /components
 2002-04-25 02:52:44 +00:00
sonja.mirtitsch%sun.com 323d14311b trying a version that can test tip as default for tinderbox and 341 
as default for nightly QA
 2002-04-25 01:04:10 +00:00
relyea%netscape.com 56733313ca Don't crash if our cache entry is not found. 2002-04-25 00:45:42 +00:00
relyea%netscape.com 28cdf792e4 Turn off caching for non-hardware tokens for now until we fix some of our 
tokens which can be updated out-of-band to use the proper 'removable token'
semantics.
 2002-04-25 00:25:58 +00:00
relyea%netscape.com 5c82cde910 Don't crash if we don't find the profile (and thus don't have a slot to free). 2002-04-24 22:23:37 +00:00
ian.mcgreer%sun.com f8317d7af9 This is a real corner case. If a search is done by issuer/serial, and the returned cert was in the cache, need to see if the cert's slot was removed. If so, destroy the cert and retry the search on the present tokens. 2002-04-24 19:39:41 +00:00
relyea%netscape.com cd38faba86 Don't crash when getting a single user cert, but old certs are in the database 
with the same subject, but no keys.
 2002-04-24 18:29:04 +00:00
relyea%netscape.com 9b432ab983 Look up both DER encoded serial numbers (PKCS #11 spec), and decode serial 
numbers (Old NSS) when looking up certs by issuer and SN.
 2002-04-24 18:27:17 +00:00
relyea%netscape.com bb017f0ffd Authenticate to tokens before looking up user certs. 2002-04-24 18:25:48 +00:00
kaie%netscape.com 0aa2271015 b=129067 Deleted certs still appear in Cert Manager, uses slow workaround, which should get removed once bug 138626 is fixed. 
r=javi sr=alecf
 2002-04-24 00:51:33 +00:00
kaie%netscape.com e7a9499b78 b=134992 Fix crash when displaying some S/Mime messages. 
r=javi sr=alecf
 2002-04-24 00:40:49 +00:00
kaie%netscape.com e8c4b88efb b=139349 Need to use dont_AddRef with GetCertAtIndex 
r=bryner sr=alecf
 2002-04-24 00:35:05 +00:00
kaie%netscape.com d033f1dbcb b=139325 Leaking CERTCertificate references from nsNSSCertificate::GetChain 
r=bryner/javi sr=alecf
 2002-04-24 00:15:12 +00:00
thayes%netscape.com 9855f801d2 Reserved Netscape extension (NETSCAPE 1 18) 2002-04-23 23:48:20 +00:00
ian.mcgreer%sun.com 9d9366f6db fix shutdown leaks 2002-04-23 17:22:13 +00:00
kaie%netscape.com 658962867b b=125607 Temporary workaround for better displaying signed S/Mime messages w/ attachments from IMAP servers. 
r=ducarroz sr=bienvenu
 2002-04-22 23:02:29 +00:00
ian.mcgreer%sun.com 7fe4b2d767 avoid use of iterator 2002-04-22 20:44:07 +00:00
ian.mcgreer%sun.com ff149d2fc9 NewTemp has to be matched with AddTempCertToPerm 2002-04-22 20:27:52 +00:00
relyea%netscape.com 9c0eda08dc Token and cert processing fixes: 
1) use NewTempCert rather than DERDecode cert in all import cert cases.
When DERDecode cert is used, we may wind up with a cert that gets cleared
when we try to import it because it already in the cache. NewTempCert will
return the version that is in the cache.
   2) If we are returning the CAList, only return certs that are CA's
(not usercerts).
   3) Authenticate to all the tokens if necessary before we try to list
certs. (Stan code should eventually get automatic authentication calls in
the code itself).
   4) When looking up user certs, don't return those certs with the same
subject, but do not have any key material associated with them (that is
don't crash if we have old certs in our database without nicknames, but
match user certs on our smart cards).
   5) Save the nickname associated with our subject list in the temp
cache so we can correctly remove the entry even if the cert's nickname
changes (because of smart card insertions and removals, or because of
creation and deletions of our user cert).
 2002-04-22 19:09:01 +00:00
ian.mcgreer%sun.com 6f242bce0e file is no longer part of build (functionality in devtoken.c) 2002-04-22 18:28:30 +00:00
ian.mcgreer%sun.com 8f09896195 overwrite old entry during import, so that changing trust works correctly 2002-04-22 15:21:06 +00:00
ian.mcgreer%sun.com a5c756c373 fix bugs in cert import with smart card cache 2002-04-22 14:14:44 +00:00
ian.mcgreer%sun.com 5f29c565cc re-sync the trust domain cache with token insertion/removal 2002-04-19 23:06:44 +00:00
nicolson%netscape.com 201d8a50bc JSS 3.2 features check-in. 2002-04-19 22:42:05 +00:00
ian.mcgreer%sun.com 20d3a4206d * make sure the token cache returns failure in overflow case 
* change internal module trust order again, builtins uses 100, and internal module must come first
 2002-04-19 19:30:12 +00:00
ian.mcgreer%sun.com 66a82a7cc5 try again, the default is 50 so the internal module must be higher 2002-04-19 19:19:33 +00:00
ian.mcgreer%sun.com df1f30dd48 make sure the internal module defaults to trust order > 50 2002-04-19 19:01:45 +00:00
ian.mcgreer%sun.com cdbdd213d0 improve synchronization between the token state and token cache operations 2002-04-19 17:32:22 +00:00
ian.mcgreer%sun.com 7f2b70a208 Only fall back to email search if the "nickname" has an @ character. This is because email searches will not go through the cache, so should be avoided if possible. 2002-04-19 16:22:31 +00:00
ian.mcgreer%sun.com a8c12b8551 Fixes for smart card cache. Don't do cache searches by email address, since GetAttributeValue does not set that field. Handle removal correctly for item at tail of list. Don't search token after a successful cache search that returned zero hits. 2002-04-19 16:14:13 +00:00
kaie%netscape.com 2e2135248f b=137154 PSM needs to call SSL_ClearSessionCache before switching profiles 
r=javi sr=alecf
 2002-04-18 22:25:26 +00:00
jpierre%netscape.com dd440a052a Fix for 138084 - free slot list if NSC_Initialize fails 2002-04-18 20:54:22 +00:00
ian.mcgreer%sun.com 72fe6cfda5 catch non-present tokens before searching them 2002-04-18 19:37:12 +00:00
ian.mcgreer%sun.com a314e4673a two fixes for certs with multiple instances 2002-04-18 19:26:17 +00:00
relyea%netscape.com f773069cdb Don't crash if we try to get the name of a non-existant token. 2002-04-18 17:54:30 +00:00
relyea%netscape.com 9a298cf94a Remember the nickname in the cache entry so that we can always free it when the cert goes away, even if the nickname has changes. 
Also, initialize subjectList to NULL at the beginning, so we don't try to add nickname when we aren't supposed to.
 2002-04-18 17:52:55 +00:00
relyea%netscape.com 1a084027eb We need to make sure we always return a trust object, even if that object says 
there is no trust.
 2002-04-18 17:50:40 +00:00
ian.mcgreer%sun.com 26d08192dd landing new smart card cache, bug 135429 2002-04-18 17:30:05 +00:00
nicolson%netscape.com ed07493981 update NSS version. 2002-04-18 14:33:16 +00:00
wtc%netscape.com 6330398618 Bugzilla bug 126087: removed symKey->refLock because we are using atomic 
routines on symKey->refCount now.  Declare symKey->refCount as PRInt32 to
match the prototype of PR_AtomicIncrement/Decrement.
Modified files: pk11skey.c secmodti.h
 2002-04-17 01:03:23 +00:00
jgmyers%netscape.com 6fd36b42d4 Remove unneeded ForceHandshake code which broke IMAP/SSL over SOCKS: bug 133434 r=kaie@netscape.com sr=brendan@mozilla.org a=asa 2002-04-16 22:49:33 +00:00
wtc%netscape.com babb8b31e8 Bugzilla bug 133584: PK11_SaveSMimeProfile also needs to free free_slot if 
it returns on error.
 2002-04-16 22:40:07 +00:00
dbragg%netscape.com 060ac1f254 Regular milestone update of localeVersion values to 1.0.0. Bug 126785. r=tao, sr=alecf, a=asa 2002-04-16 22:19:10 +00:00
sonja.mirtitsch%sun.com f00e0d4e46 changes for jdk 1.4; and mccrel move 2002-04-16 20:57:42 +00:00
relyea%netscape.com 39dca2aade Don't free the temp secmod.db name until we are through using it. 2002-04-16 00:24:34 +00:00
ian.mcgreer%sun.com acc4169fa7 bug 63815, AIX compiler fails to build ckhelper.c in debug mode 2002-04-15 21:04:00 +00:00
ian.mcgreer%sun.com 8cf801e779 fix bbroken solaris x86 build 2002-04-15 16:20:39 +00:00
ian.mcgreer%sun.com 46d73e79e3 bug 135521, change cert lookups on tokens to be actual finds instead of traversals 2002-04-15 15:22:11 +00:00
ian.mcgreer%sun.com fc73a7647f fix a cert reference leak in strsclnt 2002-04-15 14:24:15 +00:00
kaie%netscape.com d5d6150e42 b=136908 Make CRL manager UI work again. 
r=kaie sr=ben
 2002-04-15 12:18:13 +00:00
kirk.erickson%sun.com c7ef46e0ff Resolves 126087. Backed out of slot->keyCount atomic instructions. 2002-04-14 14:07:12 +00:00
ian.mcgreer%sun.com ef8839f6d7 fix error statement 2002-04-12 19:17:48 +00:00
relyea%netscape.com 14e7ed26f6 Bug 133584: Fix reference leaks which prevent shutdown in NSS and in the tests. 
Debug builds can verify correct operation by setting NSS_STRICT_SHUTDOWN, which
will cause an assert if shutdown is called but not all the modules are freed (which
means a slot, key, or cert reference has been leaked).
 2002-04-12 19:05:21 +00:00
ian.mcgreer%sun.com d75db55520 bug 136806, don't authenticate to friendly slots when adding certs 2002-04-12 18:07:49 +00:00
ian.mcgreer%sun.com 5c2561ce2a testing theory that unmatched atomic increment/decrement is causing occasional tinderbox failures. See bug 126087. 2002-04-12 15:51:11 +00:00
kaie%netscape.com 5e578afaa3 b=102633 Changed cipher prefs dialog. 
Allow the user to enable additional ciphers.
Disable two cipher suites that are no longer in use (said the NSS team).
r=javi/nelsonb/cotter sr=alecf
 2002-04-12 04:44:29 +00:00
kaie%netscape.com be88a33114 b=119418 Fix handling of opaque signed S/Mime messages. 
Also fixes some other S/Mime issues, as described in the bug.
r=ddrinan/ducarroz/darin sr=alecf
 2002-04-12 04:26:40 +00:00
relyea%netscape.com 20ddb4063a Update the version field in the handle when doing the automatic update. 2002-04-12 03:43:34 +00:00
ian.mcgreer%sun.com 0ce9d71907 additional fix for the patch from bug 126087. Must not set symKey->slot to NULL after leaving the freelist lock, or somebody else might pick up the symKey from the freelist, have their slot NULL'ed, and whamo.. 2002-04-11 23:05:38 +00:00
ian.mcgreer%sun.com 043bcf2b16 key should be freed when refcount == 0 after decrement. See bug 126087. 2002-04-11 19:15:31 +00:00
kaie%netscape.com da25d7f19e b=102633 Allow the user to enable additional ciphers, dynamically obtaining a list of ciphers from NSS. 
Disable support for two ciphers that are no longer in use.
r=javi/nelsonb/cotter sr=alecf
 2002-04-11 05:07:09 +00:00
kaie%netscape.com 5e0f8e85dd b=119481 Fix various unitialized variables. 
r=kaie/javi sr=kin
 2002-04-11 05:01:29 +00:00